Cookie Policy
Cookie Notice
Version dated 29/05/2026
Dear Visitor (the “User” or “you”), Nexify Limited, with registered office at Harbourmaster Place 4, Eir Building, Custom House Dock, Dublin 1 (Ireland), D01 K6X5, VAT/Tax no. IE3393380OH (the “Company”, “we” or “us”), hereby informs you about the use of cookies and other tracking technologies, as specified from time to time, including pixels, SDKs, localStorage and sessionStorage (collectively, for convenience, “Cookies”), on the online properties where this cookie notice is made available and, in particular, on the “Yumii” app available at https://yumii.ai (the “App” or “Yumii”).
Because Cookies are used on our properties for different purposes, this notice explains why they are used.
Some Cookies, known as first-party Cookies, are delivered and controlled directly by the Company. Through these Cookies, the Company collects and processes certain personal data relating to you. This notice, also pursuant to Art. 13 of Regulation (EU) 2016/679 (the “GDPR”) and Italian Legislative Decree 196/2003 (the “Privacy Code”, together with the GDPR, the “Applicable Law”), explains how we collect these data, for what purposes and what rights you have.
Other Cookies, known as third-party Cookies, are delivered and controlled by third parties. This notice includes information and links to notices published by such third parties, which you should read carefully.
If you are not familiar with Cookies, please read this notice and the Company’s general privacy policy carefully so that you can make informed choices.
How to contact us
The Company attaches the utmost importance to Users’ privacy and personal-data protection rights. For any information about this cookie notice, Users may contact the Company at any time by registered mail to the registered office above or by email at info@nexify.io.
You may also contact the Company’s Data Protection Officer (DPO), Shibumi S.r.l., at dpo@youniversal.com.
A. What cookies are and what they are for
Cookies are small text files that the sites visited by a user send directly to the user’s device, usually to the browser, where they are stored and then sent back to the same sites on the user’s next visit. While browsing, the user may also receive cookies from other sites or web servers, known as third-party cookies.
Cookies may last only for a single browsing session and therefore be automatically disabled when the browser is closed, or they may have a predetermined expiry and remain stored until that date unless deleted by the user.
Cookies are used for different functions. Some are necessary to allow you to browse the App and use its features, known as technical cookies. Others are used to obtain statistical information, in aggregate or non-aggregate form, on the number of users accessing the App and how the App is used, known as monitoring or analytics cookies. Others may be used to build a consumer profile and show advertisements consistent with tastes and consumption habits, known as profiling cookies.
To learn more about these cookie categories, please continue reading this notice, discover how they work and what they are used for, and freely choose whether to consent to or prevent their use where consent is required.
B. Technical cookies
Technical Cookies are used solely to make browsing the Company’s properties possible and to allow you to use their features. This category also includes local-storage tools comparable to cookies, such as localStorage and sessionStorage, where they are necessary for authentication, security, session continuity, preference management or completion of flows requested by the User.
Some technical Cookies are essential to provide an optimal browsing experience or to allow you, as a registered user, to authenticate and access your reserved area. Other technical Cookies are useful to remember preferences, such as language, without requiring you to set them again on subsequent visits.
The Company currently uses the following technical Cookies and comparable tools:
| Name | Characteristics | Function | Duration / notes |
|---|---|---|---|
yumii.locale | First-party cookie/localStorage | Stores the User’s selected language. | Persistent until changed, deleted from the browser or technical expiry. |
yumii_access_token | First-party localStorage | Access token used to authenticate API requests by the registered User. | Until logout, token renewal/expiry, account deletion or browser deletion. |
yumii_refresh_token | First-party localStorage | Refresh token used to maintain the session and renew access. | Until logout, account deletion or browser deletion. |
yumii_authenticated | First-party localStorage | Indicates whether the User is authenticated in the interface. | Until logout or browser deletion. |
yumii_user_id, yumii_user_email, yumii_user_name | First-party localStorage | Supports display, routing and session continuity for the authenticated User. | Until logout, account deletion or browser deletion. |
yumii_pending_profile, yumii_pending_plan, yumii_pending_legal_acceptances, yumii_promo_claimed | First-party localStorage/sessionStorage | Allows onboarding, profile/plan choices, legal acknowledgements and promotions to be completed correctly. | Temporary or persistent until completion of the flow, app cleanup or browser deletion. |
yumii_legal_token | First-party sessionStorage | Manages the renewal or acceptance flow for legal documents. | Limited to the session or completion of the flow. |
editingMealId | First-party sessionStorage | Allows the selected meal to be reopened or edited correctly. | Limited to the session or closure of the edit flow. |
CookieConsent and Cookiebot tools | Technical consent cookie | Records choices made through the Cookiebot banner and panel. | Duration indicated in the updated Cookiebot declaration below. |
| Google reCAPTCHA | Third-party technical security tool | Protects email registration against spam, abuse and automated behaviour. | Duration and identifiers indicated in the Cookiebot declaration and Google notices. |
As provided by Applicable Law, your prior consent is not required for the installation of technical Cookies. You are free to block their installation by changing your browser settings or configuring your mobile device, but blocking or deleting technical Cookies may impair your ability to access the Company’s services, use all or part of the App, enable or disable certain features or receive certain services.
D. Monitoring or analytics cookies
Analytics Cookies are used by the Company to collect statistical information, in aggregate or non-aggregate form, on the number of users accessing the Company’s services and how they use the App.
Yumii uses Microsoft Clarity, provided by Microsoft, as an analytics and session-recording tool. Clarity may process information such as technical events, visited URLs, interface interactions, browser and device information, approximate geographic area, heatmaps and session replay. The Strict masking configuration is intended to limit recording of personal or sensitive content.
The following analytics Cookies are used by the Company subject to consent:
| Name | Provider | Function | Notice / opt-out |
|---|---|---|---|
Microsoft Clarity, including for example _clck, _clsk, CLID, ANONCHK, MR, MUID, SM and any other identifiers listed in the Cookiebot declaration | Microsoft Corporation / Microsoft Ireland Operations Limited | Analysis of App usage, statistics, heatmaps and session recordings to improve experience, features and service quality. | Microsoft privacy statement. Consent can be changed or withdrawn at any time through the Cookiebot panel. |
When you access the App, a consent banner managed through Cookiebot is displayed and informs you that third-party analytics Cookies are used subject to consent. If you consent, we will keep track of your choice through a technical Cookie and/or another method. If you delete this technical Cookie from your browser, the record of consent may be lost and the banner may be displayed again.
You may block the installation of analytics Cookies or withdraw consent at any time, without impairing your ability to access the App or use its content.
E. Profiling cookies
Profiling Cookies are used to build a user profile and show advertising messages consistent with that profile. As of this version, Yumii does not use profiling or advertising Cookies and does not carry out marketing activities using data collected in the App.
If such Cookies are introduced in the future, this notice will be updated and your prior consent will be requested through the banner or another mechanism compliant with Applicable Law.
F. How to manage Cookies and object to their use
There are several options for managing, disabling and deleting Cookies.
1. Change your browser settings
Follow the instructions provided by your browser manufacturer to learn how to manage, disable or delete all Cookies, including technical and analytics Cookies: Internet Explorer/Edge, Chrome, Firefox, Safari, Opera.
Choose carefully. If you indiscriminately block all Cookies, including technical Cookies, you may no longer be able to browse the App or use all or part of its features. In addition, deleting all Cookies from the browser may also remove technical Cookies and you may lose the preferences you set.
2. Use the banner and third-party interactive tools
You may manage preferences through the Cookiebot banner and panel, including withdrawal of consent granted for analytics Cookies. To disable third-party Cookies, also consult the privacy notices of the third parties that install them to learn about the tools available to manage, disable and delete those Cookies and, more generally, object to their use.
3. Mobile-device configuration
To object to the use of tracking tools within the App, you may use the banner and/or change the settings of the mobile device used, following the instructions provided by the device manufacturer.
G. Processing methods, retention periods and transfers
As stated above, the Company collects and processes certain personal data through Cookies and comparable tools that it delivers directly on the App. The Company acts as controller of these data in accordance with Applicable Law and adopts security measures appropriate to the nature of the data and purposes of processing.
Please note that, in compliance with the conditions and safeguards laid down by the GDPR, your data may be transferred to countries outside the European Economic Area. In such cases, the Company manages transfers with the safeguards and precautions required by Applicable Law.
For the provision of Microsoft Clarity, Microsoft may transfer personal data outside the European Economic Area, in particular to the United States, on the basis of the Standard Contractual Clauses and appropriate supplementary measures. More information is available in Microsoft’s privacy statement: https://www.microsoft.com/en-us/privacy/privacystatement.
For Google reCAPTCHA, Google may process personal data according to its applicable notices and terms. More information is available at https://policies.google.com/privacy?hl=en.
Some third parties listed in the tables of this notice, in the Cookiebot declaration or in the banner may process data collected through third-party Cookies as independent controllers. Please read their respective notices carefully.
All processing is carried out with logic strictly related to the stated purposes and in a manner that ensures data security and confidentiality. Users’ personal data will be retained for the time strictly necessary to fulfil the purposes described and, in any event, for no longer than 90 days after the end of the relationship with the User, unless a different period is indicated in the tables, in the Cookiebot declaration, or is necessary to comply with legal obligations or defend rights.
H. Your rights
Users may exercise the rights granted by Applicable Law or obtain further information about this cookie notice by contacting the Company through the methods indicated above.
Under Applicable Law, Users have the right to withdraw consent at any time where processing is based on consent, the right of access to personal data, the right to data portability where applicable, the right to restriction of processing, rectification and erasure, and the right to object to processing in the cases provided by law.
If Users believe that the processing concerning them infringes the GDPR, they have the right to lodge a complaint with a supervisory authority. The Italian supervisory authority is the Garante per la protezione dei dati personali, Piazza Venezia 11, 00187 Rome, https://www.garanteprivacy.it.
The Company is not responsible for keeping every link displayed in this Cookie Notice constantly up to date. Therefore, whenever a link is not working or not up to date, Users acknowledge and accept that they should always refer to the relevant document or section of the websites referenced by that link.
The detailed and updated list of Cookies detected through Cookiebot is shown below.
Detailed list of cookies
For further information about personal data processing, please consult the Company’s general privacy policy.